Feedback Requested: Comprehensive Research PR - Includes Code Review, OPSEC, Onchain Analysis etc

BenW · October 25, 2025, 2:44pm

Comprehensive Research Contribution: Web3 Privacy Projects

Date: October 25, 2025
PR: #1997

TL;DR

Just submitted a large research contribution to the Web3Privacy Explorer. 40 privacy projects now have comprehensive documentation including:

GitHub code analysis
Team details
Security assessments
Technical deep-dives

Total contribution: 265 files, 12,378 lines of analysis

What Was Submitted

Research Scope: 171 Analyzed → 40 Submitted, 788 More in Pipeline

This submission represents the first wave of a comprehensive ecosystem analysis:

Initial Analysis Pool:

171 projects analyzed or research attempted in initial deep-dive
40 projects passed quality threshold for submission (had sufficient verified data)
131 projects had incomplete or insufficient data for submission

Research Pipeline:

788 projects in research-required/ folder awaiting analysis
- 705 from Web3Privacy Explorer database
- 48 verified from original archive
- 35 privacy ecosystem projects (funders, infrastructure, tools)

Total ecosystem coverage: 959 Web3 privacy projects (171 analyzed + 788 pipeline)

This PR includes the 40 projects where we found enough information to meet our quality standards through multi-source verification. The methodology that worked for these 40 will now be applied to the remaining 919 projects.

See examples of research depth:

Mysterium Network OSINT data (2,212 lines - infrastructure & team OPSEC)
Tornado Cash smart contracts (on-chain data)

What Each Submitted Project Includes

CODE_REVIEW.md - Repository analysis (stars, forks, contributors, commit activity, languages)
TEAM.md - Verified leadership information and organization structure
SECURITY.md - Security features, audit status, privacy mechanisms
TECHNICAL.md - Technology stack, architecture, capabilities

File Structure Example

web3privacy/explorer-data/src/projects/cake-wallet/
├── index.yaml              ← Basic metadata + links to reports
├── logo.png                ← Project logo
├── README.md               ← Project overview
├── project_metadata.json   ← Aggregated data
└── reports/
    ├── CODE_REVIEW.md      ← 160 lines of GitHub analysis
    ├── TEAM.md             ← 98 lines of team info
    ├── SECURITY.md         ← 117 lines of security analysis
    └── TECHNICAL.md        ← 172 lines of tech details

Research Methodology

This research follows a systematic, multi-phase approach based on best available information:

Information Flow Diagram

┌─────────────────────────────────────────────────────────────────┐
│                    PHASE 1: BROAD SEARCH                        │
│  Automated discovery across official sources (parallel agents)  │
└─────────────────────────────────────────────────────────────────┘
                              │
                              ▼
┌──────────────┬──────────────┬──────────────┬──────────────────┐
│   Website    │   GitHub     │  Social      │   News/Blog     │
│   Scraping   │   API        │  Media       │   Aggregators   │
└──────────────┴──────────────┴──────────────┴──────────────────┘
                              │
                              ▼
                    ┌─────────────────┐
                    │  verified_data  │
                    │  (confidence    │
                    │   scores 0-1)   │
                    └─────────────────┘
                              │
                              ▼
┌─────────────────────────────────────────────────────────────────┐
│                    PHASE 2: DEEP DIVES                          │
│       Specialized analysis with domain-specific tools           │
└─────────────────────────────────────────────────────────────────┘
                              │
                              ▼
┌──────────────┬──────────────┬──────────────┬──────────────────┐
│   GitHub     │   OSINT      │  On-Chain    │   Smart         │
│   Analysis   │   Tools      │  Analysis    │   Contract      │
│   (commits,  │ (Spiderfoot, │  (APIs,      │   Review        │
│   languages) │  OPSEC)      │  explorers)  │  (Solidity)     │
└──────────────┴──────────────┴──────────────┴──────────────────┘
                              │
                              ▼
                    ┌─────────────────┐
                    │  analysis/      │
                    │  (JSON files    │
                    │   with data)    │
                    └─────────────────┘
                              │
                              ▼
┌─────────────────────────────────────────────────────────────────┐
│                PHASE 3: REPORT GENERATION                       │
│    Clean markdown reports (internal methodology removed)        │
└─────────────────────────────────────────────────────────────────┘
                              │
                              ▼
┌──────────────┬──────────────┬──────────────┬──────────────────┐
│   CODE_      │   TEAM.md    │  SECURITY.md │   TECHNICAL.md  │
│   REVIEW.md  │              │              │                 │
└──────────────┴──────────────┴──────────────┴──────────────────┘
                              │
                              ▼
                  ┌───────────────────────┐
                  │  Web3Privacy Explorer │
                  │  (Public Database)    │
                  └───────────────────────┘

Four-Layer Data Architecture

Our research maintains a strict separation between internal methodology and public presentation:

Layer 1: Internal Research (`sources/`)

verified_data.json - Raw data with confidence scores (0.0-1.0)
Multi-source verification metadata
Research methodology tracking
Never publicly exposed

Layer 2: Analysis Data (`analysis/`)

github_analysis.json - Repository metrics, languages, activity
smart_contracts.json - Contract addresses, deployment info
osint_data.json - Infrastructure and team OSINT research
oso_data.json - Open Source Observer data
Intermediate processing layer

Layer 3: Public Reports (`reports/`)

CODE_REVIEW.md - Clean GitHub analysis
TEAM.md - Verified team information
SECURITY.md - Security features and audits
TECHNICAL.md - Technology and capabilities
Clean, professional markdown - no internal methodology exposed

Layer 4: Export Metadata (root)

project_metadata.json - Aggregated data for APIs
index.yaml - Web3Privacy Explorer format
README.md - Project landing page

Research Quality Standards

Every data point follows our “constitutional research” methodology:

No Placeholders or Fabrication

Best available information with honest limitations

No placeholder text like “Team of 5-10 developers”
No estimates like “Approximately $2M in funding”
If we don’t know it, we document it as a gap
Note: Sources themselves may contain errors, tools can hallucinate, experimental pipelines may introduce issues - we ask the community to submit corrections via PRs/issues

Multi-Source Verification

Critical facts require 2+ independent sources

Founder: Vikrant Sharma
├── Source 1: Official interview (changenow.io)
├── Source 2: LinkedIn profile
└── Confidence: 0.95

Confidence Scoring (0.0 - 1.0)

1.0 - Official source (website, GitHub)
0.9-0.95 - Secondary source (verified interview, LinkedIn)
0.7-0.85 - Tertiary source (news, community)
< 0.7 - Not included in public reports

Honest Gap Reporting

We explicitly document what we DON’T know.

This prevents others from wasting time on failed research approaches.

Decentralized Agent Swarms (Tool Orchestration)

To scale this methodology across 40 projects, we deployed parallel LLM agents for task coordination:

Batch Processing Architecture

┌─────────────────────────────────────────────────────────────┐
│            CONTROL AGENT (Task Orchestrator)                │
│  Assigns projects to worker agents, monitors progress       │
│  LLM manages which tools to run, not data generation        │
└─────────────────────────────────────────────────────────────┘
                      │
      ┌───────────────┼───────────────┬─────────────┐
      ▼               ▼               ▼             ▼
┌─────────┐     ┌─────────┐     ┌─────────┐   ┌─────────┐
│ Agent 1 │     │ Agent 2 │     │ Agent 3 │...│ Agent 6 │
│ Batch 1 │     │ Batch 2 │     │ Batch 3 │   │ Batch 6 │
│ 7 proj  │     │ 7 proj  │     │ 7 proj  │   │ 7 proj  │
└─────────┘     └─────────┘     └─────────┘   └─────────┘
      │               │               │             │
      ▼               ▼               ▼             ▼
For each project (LLM decides which tools to run):
1. WebSearch official sources → real-time data
2. GitHub API calls → live repo data
3. Python scripts → process/analyze results
4. Generate markdown reports → format output
5. Verify quality → cross-check sources

What LLMs Did vs Didn’t Do

LLMs handle (coordination & transformation layers):

Deciding which tools to run (WebSearch, GitHub API, Python scripts)
Coordinating task sequences (search first, then analyze)
Extracting structured data from API responses hallucination risk
Formatting results into markdown reports hallucination risk
Cross-validating between different data sources

LLMs DIDN’T do:

Generate data from training knowledge
Make up facts or statistics
Fill in missing information with guesses

Where hallucination risk exists:

Coordination layer: LLM might choose wrong tool or misinterpret task requirements
Transformation layer: LLM might misextract data when parsing API responses or formatting markdown

Risk mitigation through validation layers:

Multi-agent cross-validation (different agents verify same data)
Confidence scoring on extracted data
Manual spot-checks of outputs
Source URLs preserved in internal files for verification

All actual research data comes from: Live web searches, API calls, and real-time sources - not LLM training data.

Parallel Execution Benefits

Quality assurance: Each agent runs independent verification using real-time tools, control agent validates outputs before acceptance. Multiple agents working in parallel allows faster processing while maintaining research quality through cross-validation.

Quality Metrics

By The Numbers

Metric	Value
Projects committed	40
Total research files	265
Lines of analysis	12,378
Average confidence	0.85-0.95
No intentional fabrication	Yes
Multi-source verification	100%
Community corrections welcome	Yes

Data Quality Breakdown

Tier 1 (Basic Info): 100% complete

Website, GitHub, description, status

Tier 2 (Detailed Data): 70-80% complete

Team information, technology stack, security features

Tier 3 (Advanced): 40-60% complete

Full funding details, complete team rosters, detailed on-chain metrics

ATTEMPTED Files: Honest Gap Reporting

18 projects have blockchain_metrics_ATTEMPTED.md files documenting research that found no data:

Attempted: Etherscan, DeFiLlama, block explorers
Result: No verifiable on-chain data found
Reason: Could be testnet-only, private chains, or insufficient documentation
Purpose: Prevent others from repeating failed approaches

Research Tools & Technology Stack

Data Collection Tools

WebFetch - Automated website content extraction (real-time data)
WebSearch - Multi-source verification and news discovery (real-time data)
GitHub API - Repository metrics and code analysis (live API calls)
Blockchain APIs - Etherscan, DeFiLlama, custom block explorers (on-chain data)
Playwright MCP - Browser automation for debugging and verification

Analysis Tools

Python scripts - Custom data processing and analysis
Spiderfoot - OSINT reconnaissance on team members and infrastructure
Smart Contract Review - Solidity analysis, security pattern detection

Agent Coordination

LLM agents - Used for tool orchestration and task management (NOT for data generation)
Important: LLMs coordinated which tools to run and how to process results
Data sources: All actual research data came from web APIs, searches, and live sources - not LLM training data

Quality Assurance

“Constitutional research” methodology - No intentional fabrication, best available sources
Multi-agent verification - Cross-checking between agents
Confidence scoring - Automated quality metrics
Manual spot-checks - Random sampling of 5+ projects per batch
Community review - Open to corrections via PRs and issues

What’s Next

Immediate Next Steps

Tag all 40 project repositories on GitHub
- Notify project teams that their research is available
- Encourage them to review and submit corrections/updates
- Invite them to fill data gaps (team info, funding, on-chain metrics)
Research-required projects (47 remaining)
- Work to obtain basic surface-level information (website, repo, description)
- Many are promising projects but lack public documentation
- Once basics are found, apply same comprehensive research methodology
Regular updates as projects evolve
- New releases, team changes, security audits
- On-chain metric updates for active protocols
- Community-submitted corrections and additions

Projects Awaiting Further Research (47 total)

Click to expand list of projects in research-required/ folder

These projects need basic surface-level information before comprehensive research can begin:

1inch-privacy, aleo, anoma, brave-browser, curve-privacy, curvy, dark-forest, dash, dusk-network, eth2-deposit-cli, farcaster, gitcoin-grants, hinkal, horizen, hurricane-core, inco, keep-network, lens-protocol, maci, mask, metamask-snaps, mina-protocol, night, nighthawk-wallet, nocturne, nuconstruct, nucypher, polygon-hermez, polygon-zero, pse-privacy-scaling-explorations, railway, rarime, ronin, samourai-wallet, snapshot-x, starknet, taceo, token-shielder, zama, zecrey, zkbob, zksync-era, zupass

If you’re involved with any of these projects - please submit basic info (website, GitHub, brief description) so we can conduct comprehensive research!

Long-term Vision: Decentralized Research Infrastructure

The goal is to scale this methodology across the entire Web3 privacy ecosystem through:

Scale to 700+ projects - Apply this research methodology broadly
Continuous monitoring - Detect new commits, releases, security advisories
Automated updates - Generate PRs when significant changes detected
Community-driven - Multiple contributors using various tools and approaches
Open methodology - Anyone can apply this research framework with their own infrastructure

Why Code Review & OPSEC Matter for Privacy Projects

Privacy projects require deeper analysis beyond basic features. Here’s why:

Code Review is Critical for Privacy Claims

Trust verification: “Privacy-preserving” is a claim that requires code-level validation
Implementation quality: Privacy features in whitepaper ≠ privacy features in production code
Active development: Regular commits indicate ongoing security maintenance
Community involvement: Contributor count and diversity signal decentralization
Example: A mixer claiming “trustless privacy” but with centralized admin keys visible in code

OPSEC Research Protects Users

Infrastructure analysis: Centralized servers for “decentralized” privacy tools
Funding transparency: Who’s backing privacy infrastructure matters for trust
Attack surface: OSINT reveals potential vectors (DNS, hosting, dependencies, team member vulnerabilities)

These layers are especially important for privacy projects because:

Users trust these tools with sensitive data
Privacy failures can have severe real-world consequences
Marketing claims often exceed technical reality
Decentralization claims need verification
Security research requires technical depth

Why This Matters

For Projects:

Professional, accurate documentation of their work
Technical validation of privacy claims
Regular updates as they evolve
Opportunity to correct errors and fill gaps

For Users:

Comprehensive, up-to-date information
Technical verification of privacy features
Honest assessment of limitations and risks
Verified, multi-source data

For Researchers:

Avoid duplicating failed research
Build on existing verified work
Contribute to growing knowledge base
Technical depth beyond surface-level analysis

Contributing & Feedback

How to Help

Project Teams: Found an error? Have updated information?

Submit PR to: GitHub - web3privacy/explorer-data: Privacy Explorer Data Repository
Or open issue: Tag @M0nkeyFl0wer

Researchers: Want to contribute?

Use our methodology: GitHub - M0nkeyFl0wer/ethereum-cypherpunk-research: A ongoing open source research project focused Ethereum Privacy Tools and the related ecosystem.
Focus on projects in research-required/ folder
Apply the same quality standards (multi-source verification, no fabrication, honest gaps)

Community: Questions or suggestions?

Reply to this thread
DM me on the forum
Open a discussion on GitHub

What Should We Prioritize Next?

I’d love the community’s input on next steps:

Potential priorities:

Tag all 40 projects on GitHub to notify teams?
Focus on the 47 research-required projects to get basic info?
Deeper OPSEC research on high-profile projects (infrastructure, dependencies)?
On-chain analysis for protocols with smart contracts?
Automated monitoring for security advisories and major updates?
Something else entirely?

Specific questions:

Which projects from the research-required list are most important to the community?
What additional data layers would be most valuable? (Funding details? Token metrics? Audit history?)
Should we prioritize breadth (more projects) or depth (more detailed analysis)?
Any tools or data sources we should integrate?

Drop your thoughts below! This is community-driven research - your input shapes the roadmap.

Repository Links

Main Research Repo:

PR to Web3Privacy Explorer:

github.com/web3privacy/explorer-data

Add comprehensive research for 40 Web3 privacy projects

main ← M0nkeyFl0wer:add-cypherpunk-research-projects

opened 12:20PM - 25 Oct 25 UTC

M0nkeyFl0wer

+12553 -1219

# Web3Privacy Explorer Contribution - 40 Privacy Projects ## Overview Cont…ributing 40 Web3 privacy projects with comprehensive research, verified data, and professional documentation to the Web3Privacy Explorer database. ## What's Included ### Projects Submitted: 40 Each project includes: - **index.yaml** - Complete project metadata in Web3Privacy Explorer format - **logo.png** - Project logo (10 projects included) - **Verified data** from multiple sources (GitHub, official websites, documentation) ### Project Categories **By Type:** - Wallets: 3 projects (Cake Wallet, Wasabi Wallet, etc.) - Infrastructure/Protocols: 24 projects - Privacy Tools/DeFi: 13 projects **Notable Projects Included:** - Cake Wallet - Multi-currency privacy wallet with Tor integration - Monero - privacy cryptocurrency - Zcash - privacy cryptocurrency - Tornado Cash - Decentralized mixer protocol - HOPR - Privacy-preserving mixnet - Iron Fish - Privacy-focused blockchain - zkSync - Layer 2 scaling with privacy features - And 33 more... ## Data Quality Standards ### Research Methodology All project data was gathered using **Constitutional Research v2.0.0** methodology: ✅ **Multi-source verification** - Data cross-referenced from: - Official project websites - GitHub repositories - Project documentation - Team member profiles - Community channels - OSINT tool data from HIBP, Shodan, Virus Total, Dehashed and 30+ more modules on Spiderfoot ✅ **Confidence scoring** - Internal quality assurance: - All data assigned confidence scores (0.0-1.0) - Average confidence: 0.85-0.95 across projects - Low-confidence data excluded from submission ### Data Sources **For each project, we extracted:** - `name` - Official project name - `description` - From GitHub repositories or official sites - `categories` - Mapped to explorer categories (wallets, infrastructure, etc.) - `ecosystem` - Blockchain platforms (Ethereum, Monero, etc.) - `team` - Leadership information where publicly available - `links` - Official website, GitHub, docs, social media - `project_status` - Current version/maturity (MVP, Mainnet, etc.) - `blockchain_features` - Open source status, custody type - `privacy_policy` - Privacy policy existence and defaults - `licences` - Open source licenses (MIT, GPL, etc.) ## YAML Format Compliance All YAML files follow the Web3Privacy Explorer schema: ```yaml name: Example Project categories: [ infrastructure ] ecosystem: [ Ethereum ] usecases: [ Privacy ] description: "Verified description from official sources" team: anonymous: false teammembers: - name: "Verified name" role: "Verified role" link: "https://verified-profile-url" links: web: https://project-website.com github: https://github.com/project/repo docs: https://docs.project.com project_status: version: Mainnet sunset: false blockchain_features: opensource: true asset_custody_type: non-custody default_privacy: true tracebility: kyc: false licences: MIT License ``` ## Quality Assurance ### Verification Process Each project underwent: 1. **Automated extraction** from existing research database (87 projects analyzed) 2. **README parsing** to extract descriptions and links 3. **GitHub API** verification of repository data 4. **Manual spot-checking** of projects for accuracy 5. **Format validation** against Web3Privacy Explorer schema ### Projects Excluded **Not included in this PR:** - 44 projects in our research-required/ folder - Reason: Insufficient surface-level information (missing website, repo, or description) - Will be submitted in future PRs once basic information is found ## Project List <details> <summary>Click to expand full list of 40 projects</summary> 1. cake-wallet 2. circom 3. concordium 4. darkfi 5. deeper-network 6. elusiv 7. fileverse 8. findora 9. firo 10. fluidkey 11. hopr 12. iden3 13. incognito 14. iron-fish 15. mask-network 16. mobilecoin 17. monero 18. mysterium-network 19. oasis-network 20. orchid 21. oxen 22. privatepool 23. rotki 24. semaphore 25. sentinel 26. sienna-network 27. snarkjs 28. starkex 29. suterusu 30. tornado-cash 31. typhoon-network 32. wasabi-wallet 33. webb-protocol 34. xx-network 35. zano 36. zcash 37. zeal 38. zk-money 39. zksync 40. zkvote </details> ## Comprehensive Research Available ### Beyond YAML Exports While this PR submits YAML index files for the explorer database, our full research repository contains: **For each project:** - CODE_REVIEW.md - GitHub repository analysis (stars, forks, commits, contributors, languages) - TEAM.md - Leadership and organization structure - SECURITY.md - Security features, audit status, vulnerability history - TECHNICAL.md - Technology stack, privacy features, architecture - project_metadata.json - Aggregated metadata with confidence scores **Repository:** https://github.com/M0nkeyFl0wer/web3-privacy-ethereum-cypherpunk-research This comprehensive research can be leveraged for future enhancements to the Web3Privacy Explorer. ## Next Steps & Future Contributions ### Immediate - Review and merge these 40 projects - Community feedback on data accuracy - Project teams encouraged to submit corrections via PRs/issues ### Future Submissions - 44 additional projects once surface-level information is found - Regular updates as projects evolve (new releases, team changes, audits) - Expanded data fields (funding, tokens, contract addresses) ### Decentralized Research Infrastructure Planning to deploy a decentralized agent swarm on shared community compute (Seshat) to: - Continuously monitor 700+ Web3 privacy projects - Automated update detection (new commits, releases, team changes) - Generate PRs for data updates - Scale Constitutional Research v2.0.0 methodology across entire ecosystem ## Contact & Attribution **Research Framework:** Constitutional Research v2.0.0 **Contributor:** @M0nkeyFl0wer **Repository:** https://github.com/M0nkeyFl0wer/web3-privacy-ethereum-cypherpunk-research **Research Date:** October 2025 ## License All research data submitted under **Open Database License (ODbL)** to match Web3Privacy Explorer licensing. --- **Questions or corrections?** Please open an issue or reach out to discuss data quality, methodology, or future contributions. Thank you for maintaining this vital resource for the Web3 privacy community! 🔒🌐

Forked Explorer (with all files):

Acknowledgments

Huge thanks to:

Web3Privacy team for maintaining this essential database
All project teams for building privacy-preserving infrastructure
Web3Privacy community for feedback and support
Future contributors who will help scale this research methodology

License

All research data submitted under Open Database License (ODbL) to match Web3Privacy Explorer licensing.

Important Disclaimers

This research is based on publicly available information and best-effort analysis. Limitations include:

Source reliability: We rely on official sources, but those sources themselves may contain errors or outdated information
Tool limitations: Research tools (APIs, OSINT tools, browser automation) can miss data, timeout, or introduce errors
LLM coordination & transformation risks: While research data comes from live sources (not LLM training data), LLMs can introduce errors in:
- Coordination layer: Choosing wrong tools or misinterpreting tasks
- Transformation layer: Misextracting data from API responses or incorrectly formatting outputs
- Validation layers (multi-agent verification, manual spot-checks) mitigate but don’t eliminate this risk
Experimental pipeline: This methodology uses experimental agent swarms and novel approaches - bugs may exist
Point-in-time data: Information accurate as of October 2025 - projects evolve rapidly
Coverage gaps: Some areas (funding, complete team rosters, on-chain metrics) have limited public data

We actively encourage corrections! If you spot errors, outdated info, or have additional data:

Submit a PR to the Web3Privacy Explorer
Open an issue on our research repo
Comment on this thread

This is a living dataset that improves through community collaboration.

Questions? Comments? Let’s discuss below!

I’m happy to explain the methodology in more detail, share specific examples, or discuss how we can scale this to cover more projects.

Privacy is a fundamental right.

Research conducted October 2025
Contributor: @M0nkeyFl0wer

SubsoilSquad · November 24, 2025, 3:33am

Thanks for the thorough research and suggested additions for the explorer. See end of post for TL:DR

I’ll respond or comment to sections individually:

What Each Submitted Project Includes:
CODE_REVIEW.md
TEAM.md
SECURITY.md
TECHNICAL.md

Code review is an important data point for a user to see how active and well maintained a project is.
Team OSINT research helps a user learn more information about a team behind a project

Research Quality Standards

What categories were the research quality standards applied to?

Decentralized Agent Swarms (Tool Orchestration)

The Web3privacy explorer team is already looking into using LLM agents to scrape and report data for new projects.

Agents run a risk and @BenW notes the hallucination risk which is important. I would like to abstract away any extra work we can do and use agents where economically feasible while reducing hallucination risk/wrong information being populated.

Research Tools & Technology Stack

The tools outlined here are extremely helpful for us, we can configure/optimize the tools we use to increase the depth of the information we want to collect. We also should consider the resources needed to use tools like these most optimally.

What’s Next
3. Regular updates as projects evolve

This is a tool that would be very useful for projects on the explorer. Including both informing users of newly pushed updates of projects and alerting project team members of edits/updates to explorer information. This can also include contacting projects if there are issues discovered using the explorer research tools.

Why Code Review & OPSEC Matter for Privacy Projects

This explanation is very helpful to justify why its important for this data to be collected and represented on the explorer.

@BenW your resource listed here was great to review and get a better sense of what you were describing in your post

Thanks and looking forward to getting this worked into the explorer, even if its incremental

TL:DR

I personally would like to apply this code review, OPSEC, and Onchain Analysis to the explorer. We may be able to include a more detailed breakdown on specific research reports for projects or teams. This was a sample size of 40 projects from the explorer, and we can work to apply this to the rest of the explorer.

Generally I think this would be a great addition to the explorer for users. More information displayed about projects and their teams will give more data points. We would need to figure out where to include this data.

Whats needed for added OSINT results?
- token cost
- still needs a person in between to review
- the simpler the OSINT test, the less resources the explorer uses
- cost around running infrastructure
- need to have added form fields, and code reviewed
- script that could run monthly whenever a new PR is pushed to a project’s main repo

Pros

More data for projects
Automated data collection

Cons

Need to run extra infrastructure
cost/resource expense
not 100% fully automated